Zte ZXR10 5200 Series, ZXR10 5928–Fi, ZXR10 5924, ZXR10 5928, ZXR10 5952 User Manual

ZXR105900/5200Series

AllGigabit-PortIntelligentRoutingSwitch

UserManual(BasicCongurationVolume)

Version2.8.23.A

ZTECORPORATION
ZTEPlaza,KejiRoadSouth,
Hi-TechIndustrialPark,
NanshanDistrict,Shenzhen,
P .R.China
518057
Tel:(86)75526771900
Fax:(86)75526770801
URL:http://ensupport.zte.com.cn
E-mail:support@zte.com.cn

LEGALINFORMATION

Copyright©2006ZTECORPORATION.

Thecontentsofthisdocumentareprotectedbycopyrightlawsandinternationaltreaties.Anyreproductionordistributionof
thisdocumentoranyportionofthisdocument,inanyformbyanymeans,withoutthepriorwrittenconsentofZTECORPO­RATIONisprohibited.Additionally ,thecontentsofthisdocumentareprotectedbycontractualcondentialityobligations.

Allcompany ,brandandproductnamesaretradeorservicemarks,orregisteredtradeorservicemarks,ofZTECORPORATION
oroftheirrespectiveowners.

Thisdocumentisprovided“asis” ,andallexpress,implied,orstatutorywarranties,representationsorconditionsaredis­claimed,includingwithoutlimitationanyimpliedwarrantyofmerchantability,tnessforaparticularpurpose,titleornon-in­fringement.ZTECORPORATIONanditslicensorsshallnotbeliablefordamagesresultingfromtheuseoforrelianceonthe
informationcontainedherein.

ZTECORPORA TIONoritslicensorsmayhavecurrentorpendingintellectualpropertyrightsorapplicationscoveringthesubject
matterofthisdocument.ExceptasexpresslyprovidedinanywrittenlicensebetweenZTECORPORATIONanditslicensee,
theuserofthisdocumentshallnotacquireanylicensetothesubjectmatterherein.

ZTECORPORATIONreservestherighttoupgradeormaketechnicalchangetothisproductwithoutfurthernotice.

UsersmayvisitZTEtechnicalsupportwebsitehttp://ensupport.zte.com.cntoinquirerelatedinformation.

TheultimaterighttointerpretthisproductresidesinZTECORPORA TION.

RevisionHistory

RevisionNo.RevisionDateRevisionReason

R1.220091015

Editionupdate

SerialNumber:sjzl20095126

AboutThisManual..............................................i

SafetyDescription.............................................1

SafetyIntroduction.........................................................1

SymbolDescriptions.......................................................1

UsageandOperation.........................................3

CongurationMode.........................................................3

ConguringThroughConsolePort.................................4

TelnetConnectionConguration...................................7

SSHConnectionConguration......................................9

SimpleNetworkManagementProtocol(SNMP)..............11

CommandModeFunction................................................12

CommandLineFunction.................................................13

OnlineHelpCommand................................................13

CommandAbbreviation..............................................14

HistoryCommands....................................................14

SystemManagement.......................................17

FileSystem...................................................................17

IntroductiontoFileSystem.........................................17

OperatingFileSystemManagement.............................18

FTP/TFTPOverview........................................................19

ConguringSwitchasanFTPClient.............................19

ConguringSwitchasanTFTPClient............................20

BackingupDataandRestoringData................................22

BackingUpCongurationFile......................................22

RestoringCongurationFile........................................22

BackingUpVersionFile..............................................22

RestoringVersionFile.................................................22

SoftwareVersionUpgrade...............................................23

UpgradingtheVersionatAbnormality...........................23

UpgradingtheVersionatNormality..............................25

ConguringSystemParameters.......................................26

SettingaHostnameofSystem....................................26

SettingWelcomeMessageuponSystemBoot................26

SettingPrivilegedModeKey........................................26

SettingTelnetUsernameandPassword.........................26

SettingSystemTime..................................................27

SettingSystemConsoleUserConnection

Parameters.......................................................27

SettingSystemTelnetUserConnectionParameters.........27

AllowingMultipleUserstoCongureSystematthe

SameTime.......................................................27

ViewingSystemInformation...........................................28

ViewingHardwareandSoftwareVersionsofthe

System............................................................28

ViewingRunningConguration....................................28

InterfaceConguration...................................29

BasicPortConguration.................................................29

Disabling/EnablinganEthernetport.............................30

Enabling/DisablingAuto-NegotiationonanEthernet

Port.................................................................31

ConguringAutomaticNegotiationNoticationonan

EthernetPort...................................................31

SettingEthernetportDuplexMode..............................32

SettingEthernetPortSpeed........................................32

SettingFlowControlonanEthernetPort......................32

Allowing/ProhibitingJumboFameonanEthernet

Port.................................................................33

SettingPortAliasonanEthernetPort...........................33

SettingBroadcastStormSuppressiononanEthernet

Port.................................................................33

SettingMulticastPacketSuppressiononanEthernet

Port.................................................................34

SettingUnknowcastPacketSuppressiononanEthernet

Port.................................................................34

ViewingLayer2InterfacePhysicalStatus.....................34

DisplayingPortInformation.........................................36

DiagnosingandAnalyzingLines...................................36

PortMirroringConguration............................................37

PortMirroringOverview..............................................37

ConguringPortMirroring...........................................38

PortMirroringCongurationExample...........................38

LoopbackDetectionConguration....................................40

PortLoopbackDetectionOverview...............................40

ConguringPortLoopbackDetection............................40

PortLoopDetectionExample.......................................41

DOMConguration........................................................42

DOMFunctionOverview.............................................42

ConguringDOM.......................................................43

EnablingDOMFunctiononPort...........................43

ViewingCurrentOpticalModuleInformation.........43

ViewingModuleThresholdInformation.................44

ViewingtheRecordInformationThatModule

ExceedsThreshold.................................45

NetworkProtocolConguration......................47

IPAddressConguration................................................47

IPAddressOverview..................................................47

ConguringIPAddress...............................................49

IPAddressCongurationExample................................49

ARPConguration..........................................................49

ARPOverview...........................................................49

ConguringARP........................................................50

ARPCongurationExample.........................................50

SwitchStackSystem.......................................53

SwitchStackSystemIntroduction....................................53

MemberSpecicationofSwitchStackSystem..............54

StackSystemMainDeviceElectionandRenewed

Election............................................................54

StackSystemMemberID...........................................55

StackSystemMACAddress.........................................55

StackMemberDevicePriority......................................55

StackMemberDeviceSoftwareVersionCheckand

AutomaticUpgrade...........................................56

StackSystemCongurationFile..................................56

StackSystemActive/StandbyChangeover....................56

ConguringSwitchStackSystem.....................................57

AccessingtheSpecicStackMemberbyCommand

Line.....................................................................57

ViewingSwitchStackSystemInformation.........................58

ACLConguration............................................59

ACLOverview...............................................................59

ConguringACL............................................................60

ConguringTimeRange.............................................60

ConguringACLRule.................................................60

ConguringBasicACLRule.................................61

ConguringExtendedACL..................................61

ConguringL2ACL............................................62

ConguringHybridACL......................................63

ConguringBasicIPV6ACL................................64

ConguringExtendedIPV6ACL...........................64

ApplyingACLonPhysicalPort......................................65

ApplyingACLonVLAN................................................65

ConguringanACLtoSupportRenaming......................66

ACLCongurationExample.............................................66

ACLMaintenanceandDiagnosis.......................................68

QoSConguration...........................................69

QoSOverview...............................................................69

TrafcClassication...................................................69

TrafcPolicing...........................................................70

TrafcShaping..........................................................71

QueueBandwidthLimit..............................................71

QueueSchedulingandDefault802.1p..........................71

RedirectionandPolicyRouting.....................................72

PriorityMarking.........................................................72

MarkingOutsideVlanValue.........................................73

TrafcMirroring.........................................................73

TrafcStatistics.........................................................73

ConguringQoS............................................................73

ConguringTrafcPolices...........................................73

ConguringTrafcShaping.........................................74

ConguringQueueBandwidthLimit..............................74

ConguringQueueSchedulingandDefault802.1pof

thePort............................................................75

ConguringRedirectionandPolicyRouting....................75

ConguringPriorityMarking........................................76

ConguringOuterVLANValue.....................................76

ConguringTrafcMirroring........................................77

ConguringTail-Drop.................................................77

ConguringTrafcStatistics........................................77

QoSCongurationExample.............................................78

TypicalQoSCongurationExample..............................78

PolicyRoutingCongurationExample...........................79

QoSMaintenanceandDiagnosis......................................80

DHCPConguration.........................................83

DHCPOverview.............................................................83

ConguringDHCP..........................................................84

ConguringIPPool....................................................84

ConguringDHCPPOOL.............................................86

ConguringDHCPPOLICY...........................................88

ConguringDCHPServer............................................89

ConguringDHCPSnooping........................................91

ConguringDHCPRelay..............................................94

ConguringDHCPClient.............................................98

DHCPCongurationExample...........................................99

DHCPServerCongurationExample............................99

DHCPRelayCongurationExample............................100

DHCPSnoopingCongurationExample.......................101

DHCPSnoopingPreventStaticIPConguration

Example.........................................................102

DHCPMaintenanceandDiagnosis..................................103

VRRPConguration.......................................105

VRRPOverview...........................................................105

ConguringVRRP........................................................106

VRRPCongurationExample.........................................107

BasicVRRPCongurationExample.............................107

SymmetricVRRPCongurationExample.....................108

VRRPMaintenanceandDiagnosis...................................109

NetworkManagementConguration.............111

NTPConguration........................................................111

NTPOverview.........................................................111

ConguringNTP......................................................111

NTPCongurationExample.......................................112

RADIUSConguration..................................................113

RADIUSOverview....................................................113

ConguringRADIUS.................................................113

RADIUSCongurationExample.................................115

SNMPConguration.....................................................115

SNMPOverview.......................................................115

ConguringSNMP....................................................115

SNMPCongurationExample....................................118

RMONConguration.....................................................119

RMONOverview......................................................119

ConguringRMON...................................................119

RMONCongurationExample....................................120

SysLogConguration...................................................121

SysLogOverview.....................................................121

ConguringSysLog..................................................121

SyslogCongurationExample...................................123

TACACS+Conguration................................................124

TACACS+Overview.................................................124

ConguringTACACS+..............................................124

TACACSCongurationExample.................................127

DOT1XConguration.....................................129

DOT1xOverview.........................................................129

ConguringDOT1X......................................................130

ConguringAAA......................................................130

ConguringDOT1XParameter...................................132

ConguringLocalAuthenticationUser.........................133

ManagingDOT1XAuthenticationAccessUser..............134

ManagingMultipleDomainsConguration...................135

Conguring802.1xVLANHopping.............................136

DOT1XCongurationExample.......................................137

Dot1xRadiusAuthenticationApplication.....................137

Dot1xTrunkAuthenticationApplication.......................138

Dot1xLocalAuthenticationApplication.......................139

DOT1XMultipleDomainsFunction..............................140

DOT1XMaintenanceandDiagnosis................................140

ClusterManagementConguration...............143

ClusterManagementOverview......................................143

ConguringClusterManagement...................................145

ConguringZDPNeighborDiscoveryProtocol..............145

ConguringZTPTopologyCollectionProtocol...............146

EstablishingCluster................................................147

MaintainingCluster..................................................148

ClusterManagementCongurationExample....................149

ClusterManagementMaintenanceandDiagnosis.............149

IPTVConguration........................................151

InternetProtocolTelevisionOverview.............................151

ConguringIPTV.........................................................151

ConguringIPTVGlobalParameters...........................151

ConguringIPTVChannels........................................152

ConguringChannelAccessControl(CAC)..................153

ConguringAdministrativeCommandofIPTV

Users.............................................................154

IPTVCongurationExample..........................................154

IPTVMaintenanceandDiagnosis....................................155

VBASConguration.......................................157

VBASOverview...........................................................157

ConguringVBAS........................................................157

Enabling/DisablingVBAS..........................................157

Enabling/DisablingVBASinVLANMode......................158

ConguringVBASTrustInterface...............................158

ConguringVBASInterfaceasUserInterfaceor

NetworkInterface............................................158

VBASCongurationExample.........................................158

VBASMaintenanceandDiagnosis..................................159

ZESR/ZESR+Conguration...........................161

ZESR/ZESR+Overview................................................161

ConguringZESR/ZESR+.............................................162

ConguringZESRAreaProtectionInstance.................162

ConguringMajor-levelRingZESR.............................162

ConguringAccessRingZESR...................................164

ConguringZESRRestart-Time.................................165

ZESR/ZESR+CongurationExample..............................165

ZESRCongurationExample.....................................165

ZESRandZESR+HybridCongurationExample..........168

SecurityConguration...................................171

IPSourceGuard..........................................................171

IPSourceGuardOverview........................................171

ConguringIPSourceGuard.....................................171

IPSourceGuardCongurationExample......................172

IPSourceGuardCongurationbasedonIP

Address..............................................172

IPSourceGuardCongurationbasedonMAC

Address..............................................172

IPSourceGuardCongurationbasedonIP

AddressandMACaddress.....................173

ControlPlaneSecurityConguration..............................174

ControlPlaneSecurityOverview................................174

CommandConguration...........................................174

CongurationExample.............................................176

MaintenanceandDiagnosis.......................................176

DAIConguration........................................................177

DAIOverview..........................................................177

ConguringDAI.......................................................178

DAIMaintenanceandDiagnosis.................................178

DAICongurationExample.......................................179

MFFConguration........................................................180

MFFOverview.........................................................180

ConguringMFF......................................................180

MFFCongurationExample.......................................181

MFFmaintenanceanddiagnosis................................182

POEConguration.........................................185

POEOverview.............................................................185

ConguringPoE...........................................................186

PoECongurationExample...........................................187

PoEMaintenance.........................................................188

Figures..........................................................189

Tables...........................................................191

Glossary........................................................193

AboutThisManual

PurposeZXR105900/5200(V2.8.23.A)SeriesAllGigabit-PortIntelligent

RoutingSwitchUserManual(BasicCongurationVolume)provides
proceduresandguidelinesthatsupporttheoperationonZXR10
5900/5200SeriesAllGigabit-PortIntelligentRoutingSwitch,in­cluding:

�ZXR105924GigabitRoutingSwitch

�ZXR105928GigabitRoutingSwitch

�ZXR105928–FiGigabitRoutingSwitch

�ZXR105952GigabitRoutingSwitch

�ZXR105224GigabitConvergenceSwitch

�ZXR105228GigabitConvergenceSwitch

�ZXR105228–FIGigabitConvergenceSwitch

�ZXR105252GigabitConvergenceSwitch

�ZXR105928–PSGigabitConvergenceSwitch

Intended
Audience

Thismanualisintendedforengineersandtechnicianswhoper­formoperationactivitiesonZXR105900/5200AllGigabit-PortIn­telligentRoutingSwitches.

PrerequisiteSkill

andKnowledge

TousetheBasicCongurationVolumeeffectively,usersshould
haveageneralunderstandingofOSIModel.Familiaritywiththe
followingishelpful,

�Protocols

�RoutingconceptsandDataCommunicationTerminologies

WhatIsinThis

Manual

TheBasicCongurationVolumecontainsthefollowingchapters:

TABLE1CHAPTERSUMMARY

Chapter

Summary

Chapter1Safety
Description

Thischapterdescribesthesafety
instructionsandsigns.

Chapter2Usageand
Operation

ThischapterdescribesZXR105900/5200
congurationmodeincommonuse.

Chapter3System
Management

Thischapterintroduceslesystem
management,lebackupandrestoration,
softwareversionupgrade.

Chapter4Interface
Conguration

Thischapterdescribesportparameters
conguration,portmirroringfunction,
loopbackdetectionandDOMconguration.

Chapter5Network
ProtocolConguration

ThischapterdescribesIPaddress
congurationandARPconguration.

CondentialandProprietaryInformationofZTECORPORA TIONi

ZXR105900/5200SeriesUserManual(BasicCongurationVolume)

Chapter

Summary

Chapter6SwitchStack
System

Thischapterdescribesthecontentand
relatedknowledgeofstacksystemand
relatedconguration.

Chapter7ACL
Conguration

ThischapterintroducesACLandrelated
conguration.

Chapter8QoS
Conguration

ThischapterintroducesQOSandrelated
conguration.

Chapter9DHCP
Conguration

ThischapterintroducesDHCPandrelated
conguration.

Chapter10VRRP
Conguration

ThischapterintroducesVRRPandrelated
conguration.

Chapter11Network
Management
Conguration

ThischapterintroducesNetwork
managementconguration.

Chapter12DOT1X
Conguration

ThischapterintroducesDOT1Xt
conguration.

Chapter13Cluster
Management
Conguration

ThischapterintroducesCluster
Managementconguration.

Chapter14IPTV
Conguration

Thischapterdescribesthecontentand
relatedknowledgeofIPTVandrelated
conguration.

Chapter15VBAS
Conguration

ThischapterintroducesVBASconguration.

Chapter16ZESR
Conguration

ThischapterintroducesZESRconguration.

Chapter17Security
Conguration

ThischapterintroducesSecurity
conguration.

Chapter18POE
Conguration

Thischapterdescribesthecontentand
relatedknowledgeofPOEandrelated
conguration.

Related

Documentation

Thefollowingdocumentationisrelatedtothismanual:

�ZXR105900/5200(V2.8.23.A)SeriesAllGigabit-PortIntelli-

gentRoutingSwitchHardwareManual

�ZXR105900/5200(V2.8.23.A)SeriesAllGigabit-PortIntelli-

gentRoutingSwitchUserManual(EthernetSwitchingVolume)

�ZXR105900/5200(V2.8.23.A)SeriesAllGigabit-PortIntelli-

gentRoutingSwitchUserManual(BasicCongurationVolume)

�ZXR105900/5200(V2.8.23.A)SeriesAllGigabit-PortIntelli-

gentRoutingSwitchUserManual(IPv4RoutingVolume)

�ZXR105900/5200(V2.8.23.A)SeriesAllGigabit-PortIntelli-

gentRoutingSwitchUserManual(IPv6RoutingVolume)

�ZXR10Router-EthernetSwitchCommandManual-Command

Index

iiCondentialandProprietaryInformationofZTECORPORATION

AboutThisManual

�ZXR10Router-EthernetSwitchCommandManual-System

Management

�ZXR10Router-EthernetSwitchCommandManual-Functional

SystemI

�ZXR10Router-EthernetSwitchCommandManual-Functional

SystemVolumeII

�ZXR10Router-EthernetSwitchCommandManual-Functional

SystemVolumeIII

�ZXR10Router/EthernetSwitchCommandManual—Functional

SystemIV

�ZXR10Router/EthernetSwitchCommandManual—Protocol

StackI

�ZXR10Router/EthernetSwitchCommandManual—Protocol

StackII

�ZXR10Router/EthernetSwitchCommandManual—Protocol

StackIII

�ZXR10Router/EthernetSwitchInformationManual

CondentialandProprietaryInformationofZTECORPORATIONiii

ZXR105900/5200SeriesUserManual(BasicCongurationVolume)

Thispageisintentionallyblank.

ivCondentialandProprietaryInformationofZTECORPORATION

Chapter1

SafetyDescription

TableofContents

SafetyIntroduction.............................................................1

SymbolDescriptions...........................................................1

SafetyIntroduction

Onlyqualiedprofessionalsareallowedtoperforminstallation,
operationandmaintenanceduetothehightemperatureandhigh
voltageoftheequipment.

Observethelocalsafetycodesandrelevantoperationprocedures
duringequipmentinstallation,operationandmaintenancetopre­ventpersonalinjuryorequipmentdamage.Safetyprecautions
introducedinthismanualaresupplementarytothelocalsafety
codes.

ZTEbearsnoresponsibilityincaseofuniversalsafetyoperation
requirementsviolationandsafetystandardsviolationindesigning,
manufacturingandequipmentusage.

SymbolDescriptions

ContentsdeservingspecialattentionduringZXR105900/5200
congurationareexplainedasfollow.

Caution:

Itindicatesthatthefaultwillhappenifsafetyisignored.

Note:

Itprovidesadditionalinformation.

CondentialandProprietaryInformationofZTECORPORATION1

ZXR105900/5200SeriesUserManual(BasicCongurationVolume)

Thispageisintentionallyblank.

2CondentialandProprietaryInformationofZTECORPORATION

Chapter2

UsageandOperation

TableofContents

CongurationMode.............................................................3

CommandModeFunction...................................................12

CommandLineFunction.....................................................13

ConfigurationMode

AsshowninFigure1,ZXR105900/5200offersmultiplecongu-
rationmodes.Ausercanselectcongurationmodebasedonthe
connectednetwork.

1.CongurationofConsolePortConnection

2.TELNETConnectionConguration

3.SSHSecureShellConnectionConguration

4.SNMPConnectionConguration

FIGURE1ZXR105900/5200CONFIGURATIONMODES

CondentialandProprietaryInformationofZTECORPORATION3

ZXR105900/5200SeriesUserManual(BasicCongurationVolume)

ConfiguringThroughConsolePort

ThisismaincongurationmodeofZXR105900/5200.ZXR10
5900/5200debuggingcongurationisimplementedthroughthe
consoleportconnection.Theconsoleportconnectioncongura­tionadoptstheVT100terminalmode.

1.SelectStart>Programs>Accessories>Communica-
tions>HyperTerminalonthePCscreentostarttheHyper­Terminal,asshowninFigure2.

FIGURE2STARTINGTHEHYPERTERMINAL

2.Inputtherelatedlocalinformationintheinterfaceasshown
inFigure3.

FIGURE3LOCATIONINFORMATION

4CondentialandProprietaryInformationofZTECORPORATION

Chapter2UsageandOperation

3.AftertheConnectionDescriptiondialogboxappears,enter
anameandchooseaniconforthenewconnection,asshown
inFigure4.

FIGURE4SETTINGUPACONNECTION

4.Basedonserialportconnectiontotheconsolecable,choose
COM1orCOM2astheserialportistobeconnected,asshown
inF

igure5.

CondentialandProprietaryInformationofZTECORPORATION5

ZXR105900/5200SeriesUserManual(BasicCongurationVolume)

FIGURE5CONNECTIONCONFIGURATION

5.Enterthepropertiesoftheselectedserialportasshownin

Figure6.Theportpropertycongurationincludes:Bitsper

Second9600,Databit8,ParityNone,Stopbit1,Dataow
controlNone.

6CondentialandProprietaryInformationofZTECORPORATION

Chapter2UsageandOperation

FIGURE6COM1PROPERTIES

PoweronandbootZXR105900/5200toinitializethesystemand
toenterintocongurationforoperationaluse.

TelnetConnectionConfiguration

TelnetisthemainremotecongurationmodefortheZXR10
5900/5200.

Telnetaccessissetthroughusernameandpassword.Thisenables
unauthorizedusersfromaccessingtheswitchthroughTelnet.Use
thefollowingcommandtoconguretheusernameandpassword.

username<username>password<password>

Tostrengthenthesecurityoftheswitch,switchcanlimittelnet
loginoftheusers.Usethefollowingcommandtoadmitorrefuse
telnet’sIPaddress.

linetelnetaccess-class<basicaccesslist>

1.ConnectthehostdirectlytotheswitchandTelnettotheswitch.

CondentialandProprietaryInformationofZTECORPORATION7

ZXR105900/5200SeriesUserManual(BasicCongurationVolume)

i.ConguretheT elnetloginusernameandpasswordthrough

theconsoleport.

ii.ConguretheT elnetloginusernameandpasswordthrough

theconsoleport.

iii.ConnectthehostnetworkporttotheEthernetportofthe

switch.

iv.SetthehostIPaddresstooneinthesamenetworkseg-

mentasthatoftheVLANinterfacesothatthehostcanping
theIPaddressoftheVLANinterface.

v.RunthetelnetcommandonthehostandinputtheIPad-

dressoftheVLANinterfacetologintotheswitch,asshown
inFigure7.

FIGURE7RUNTELNET

vi.ClickOKtoentertheinterfaceasshowninFigure8.

FIGURE8TELNETLOGIN

vii.Typethecorrectusernameandpasswordatthepromptto

enterintoswitchcongurationstatus.

8CondentialandProprietaryInformationofZTECORPORATION

Chapter2UsageandOperation

Note:

i.ZXR105900/5200allowsuptofourT elnetusersatatime.

ii.Nevermodify/deletetheIPaddressofthemanagement

EthernetportduringTelnetcongurationthroughtheman­agementport;otherwise,theT elnetconnectionwillbebro­ken.

2.T elnettotheswitchfromotherdevices(suchasaswitchor
router).

i.ConguretheIPaddressesandinterfaceoftheVLAN

throughtheconsoleport.

ii.ConguretheT elnetloginusernameandpasswordthrough

theconsoleport.

iii.Considerrouterasanexample.Connecttherouterandthe

switch,ensuringthattheroutercanpingtheIPaddressof
theswitchVLANinterface.

iv.RunthetelnetcommandontherouterandinputtheIP

addressoftheVLANinterfacetologintotheswitch.

SSHConnectionConfiguration

TelnetandFTPconnectionsarenotsafebecausetheyusetheplain
texttotransmitthepasswordanddataonthenetwork.Thisre­sultsindatatobeeasilyinterceptedbyattackers.Adisadvantage
oftheTelnet/FTPsecurityauthenticationisthatitiseasilyattacked
bytheman-in-the-middle.Thisimitatestheservertoreceivethe
datasentbytheclientandimitatestheclienttotransmitthedata
totherealserver .

SSHcansolvethishiddentrouble.TheSSHsetsupasecurity
channelfortheremoteloginonnon-securitynetworkandother
networktoencryptandcompressalltransmitteddata.Inthis
way,nousefulinformationcanbeobtainedintheinterception.

ThecurrentSSHprotocolhastwoversionsthatincompatibleeach
other:SSHv1.xandSSHv2.x.ZXR105900/5200supportsthe
SSHv2.0thatprovidesasaferemoteloginfunction.

SSHconsistsofserverandclient,ZXR105900/5200servesasSSH
serverandthehostrunsSSHclienttologintotheswitch.

1.ExecutethefollowingcommandtoenabletheSSHserverin
ZXR105900/5200.Bydefault,SSHserverfunctionisdisabled.

sshserverenable

2.ConnectthehostnetworkinterfacetotheswitchEthernetin­terfacesothatthehostcanpingtheIPoftheswitchVLAN
interface.

3.RuntheSSHclientsoftware(putty)onthehost.

i.SettheIPandportnumberoftheSSHserver ,asshown

inF

igure9.

CondentialandProprietaryInformationofZTECORPORATION9

ZXR105900/5200SeriesUserManual(BasicCongurationVolume)

FIGURE9SETTINGIPADDRESSANDPORTNUMBEROF
SSHSERVER

ii.SettheSSHversionnumberasshowninFigure10.

10CondentialandProprietaryInformationofZTECORPORATION

Chapter2UsageandOperation

FIGURE10SETTINGTHESSHVERSIONNUMBER

4.ClickOpentologintotheswitchandinputthecorrectuser
nameandpasswordfollowingtheprompt.

Theuserentersswitchcongurationinterfaceuponsuccessfullo­gin.

SimpleNetworkManagement
Protocol(SNMP)

SimpleNetworkManagementProtocol(SNMP)isoneofthemost
popularnetworkprotocols.AnNMservercanmanagealldevices
onthenetworkthroughthisprotocol.

SNMPadoptsthemanagement.Thatisbasedontheserverand
client.BackgroundNMserverservesasSNMPserverandthe
foregroundnetworkdeviceZXR105900/5200servesastheSNMP
client.ForegroundandbackgroundsharesoneMIBmanagement
databaseandtheSNMPisusedforcommunications.

NMSsoftwaresupportingtheSNMPshallbeinstalledintheback­groundNMservertomanageandcongureZXR105900/5200.

CondentialandProprietaryInformationofZTECORPORATION11

ZXR105900/5200SeriesUserManual(BasicCongurationVolume)

CommandModeFunction

ZXR105900/5200allocatesthecommandstovariousmodes
basedonthefunction.Inordertoauthorizethefacilitationto
user’scongurationandmanagementfortheswitchonlyone
commandcanbeexecutedinthespecialmode.

Inputa“?”markinanycommandmodetoviewallowedcommands
inthismode.ThemaincommandsoftheZXR105900/5200are
showninT

able2.

TABLE2COMMANDMODES

Mode

Prompt

EntryCommand

Usermode

ZXR10>

Directlyenteritafterloggingintothe
system

Privilegedmode

ZXR10#

enable(usermode)

Globalcongura­tionmode

ZXR10(config)#

configureterminal(privilegedmode)

Portconguration
mode

ZXR10(config-gei_1/x)#

interface{<interface-name>|byname
<by-name>}(globalcongurationmode)

VLANdatabase
congurationmode

ZXR10(vlan)#

vlandatabaseprivilegedmode

VLANconguration
mode

ZXR10(config-vlan)#

vlan{<vlan-id>|<vlan-name>}global
congurationmode

VLANinterface
congurationmode

ZXR10(config-if)#

interface{vlan<vlan-id>|<vlan-if>}
globalcongurationmode

MSTPconguration
mode

ZXR10(config-mstp)#

spanning-treemstconfigurationglobal
congurationmode

StandardACL
congurationmode

ZXR10(config-std-acl)#

aclstandard{number<acl-number>|
name<acl-name>}globalconguration

mode

ExtendedACL
congurationmode

ZXR10(config-ext-acl)#

aclextended{number<acl-number>|
name<acl-name>}globalconguration

mode

L2ACL
congurationmode

ZXR10(config-link-acl)#

acllink{number<acl-number>|name
<acl-name>}globalcongurationmode

HybridACL
congurationmode

ZXR10(config-hybd-acl)#

aclhybrid{number<acl-number>|
name<acl-name>}globalconguration

mode

RIPconguration
mode

ZXR10(config-router)#

routerripglobalcongurationmode

RIPaddress
congurationmode

ZXR10(config-router-af)#

address-familyipv6vrf<vrf-name>RIP
routingcongurationmode

OSPFconguration
mode

ZXR10(config-router)#

routerospf<process-id>global
congurationmode

12CondentialandProprietaryInformationofZTECORPORATION

Chapter2UsageandOperation

Mode

Prompt

EntryCommand

IS-ISconguration
mode

ZXR10(config-router)#

routerisisglobalcongurationmode

BGPconguration
mode

ZXR10(config-router)#

routerbgp<as-number>global
congurationmode

BGPaddress
congurationmode

ZXR10(config-router-af)#

address-family{vpnv4|{ipv4vrf
<vrf-name>}}BGPcongurationmode

BGPconguration
mode

ZXR10(config-router)#

routerpimsmglobalcongurationmode

Routemap
congurationmode

ZXR10(config-route-map)#

route-map<map-tag>[permit|deny][<s
equence-number>]globalconguration

mode

Diagnosistest
mode

ZXR10(diag)#

diagnoseprivilegedmode

Inanycommandmode,inputa“?”markbehindthesystem
prompttoviewthelistofavailablecommandsinthiscommand
mode.

Intheprivilegedmode,executethedisablecommandtoreturnto
theusermode.

Intheusermodeandprivilegedmode,executetheexitcommand
toexittheswitch.Inothercommandmode,executetheexitcom­mandtoreturntothepreviousmode.

Incommandmodesotherthantheusermodeandprivileged
mode,executetheendcommandorpress<Ctrl+z>toreturnto
theprivilegedmode.

CommandLineFunction

OnlineHelpCommand

1.Inputa“?”markbehindthepromptofanycommandmodeto
viewallcommandsandbriefdescriptionsofthismode.

ZXR10>?
Execcommands:

enableTurnonprivilegedcommands
exitExitfromtheEXEC
loginLoginasaparticularuser
logoutExitfromtheEXEC
pingSendechomessages
quitQuitfromtheEXEC
showShowrunningsysteminformation
telnetOpenatelnetconnection
traceTraceroutetodestination
whoListuserswhoareloginingon

2.Inputthequestionmarkbehindacharacterorcharacterstring
toviewthelistofcommandsorkeywordsbeginningwiththat

CondentialandProprietaryInformationofZTECORPORATION13

ZXR105900/5200SeriesUserManual(BasicCongurationVolume)

characterorcharacterstring.Thereisnospacebetweenthe
character(characterstring)andthequestionmark.

ZXR10#co?
configurecopy
ZXR10#co

3.PressTabbehindthecharacterstring.Ifthecommandor
keywordbeginningwiththischaracterstringisunique.This
willcompletethecharacterstringwithspaceattheend.

ZXR10#con<Tab>
ZXR10#configure(thereisaspacebetweentheconfigureandcursor.)

4.Input?behindthecommand,keywordandparameter .It
showsthekeywordorparametertobeinputnextanditsbrief
explanation.Thereisaspaceinfrontofthequestionmark.

ZXR10#configure?

terminalEnterconfigurationmode

ZXR10#configure

5.Ifincorrectcommand,keywordorparameterisinput,theerror
isolationisofferedwith^intheuserinterfaceafteryoupress
ENTER.The^isbelowtherstcharacteroftheinputincorrect
command,keywordorparameter .Anexampleisgivenbelow.

ZXR10#vonter

^

%Invalidinputdetectedat’^’marker.
ZXR10#

Anexampleofsystemclockisgivenbelow.

ZXR10#cl?
clearclock
ZXR10#clock?

setSetthetimeanddate

ZXR10#clockset?

hh:mm:ssCurrentTime
ZXR10#clockset13:32:00
%Incompletecommand.

Attheendoftheaboveexample,thesystempromptsthatthe
commandisnotcompleteandotherkeywordorparametershould
beinput.

Note:

Allcommandsinthecommandlineoperationarecase-insensitive.

CommandAbbreviation

ZXR105900/5200allowsthecommandorkeywordtobeabbre­viatedintoacharacterorcharacterstringthatuniquelyidenties
thiscommandorkeyword.Forexample,theshowcommandcan
beabbreviatedtoshorsho.

HistoryCommands

Theinputcommandcanberecordedintheuserinterface.Upto
10historycommandscanberecordedandthisfunctionisuseful
forinvokingalongorcomplicatedcommandagain.

14CondentialandProprietaryInformationofZTECORPORATION

Chapter2UsageandOperation

Executeoneofthefollowingoperationstore-invokeacommand
fromtherecordbuffer ,asshowninTable3.

TABLE3INVOKINGACOMMAND

CommandFunction
<Ctrl+P>or<↑ ↑

↑

>

Invokeahistorycommandinthe
bufferforward

<Ctrl+N>or<↓ ↓

↓

>

Invokeahistorycommandinthe
bufferbackward

Intheprivilegedmode,executetheshowhistorycommandto
listthecommandsinputthelatestinthismode.

CondentialandProprietaryInformationofZTECORPORATION15

ZXR105900/5200SeriesUserManual(BasicCongurationVolume)

Thispageisintentionallyblank.

16CondentialandProprietaryInformationofZTECORPORATION